System for dynamic network authentication protocols
Abstract
A system for implementing and managing network-based, variable authentication protocols receives information relating to a digital monetary transaction. Additionally, the system accesses an initial authentication protocol dataset. The system also generates a variable authentication protocol dataset. The system then communicates the variable authentication protocol dataset to the point-of-sale computer system. The system also receives, from the point-of-sale computer system, authentication tokens. Further, the system validates the authentication tokens in view of the variable authentication protocol dataset. Further still, in response to the validation of the authentication tokens, the system processes the digital monetary transaction.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1. A computer system for network-based, variable authentication protocols, comprising:
one or more processors; and
one or more computer-readable media having stored thereon executable instructions that when executed by the one or more processors configure the computer system to perform at least the following:
receive, from a point-of-sale computer system, the following:
information relating to a digital monetary transaction,
an identification associated with a user,
an identification associated with the point-of-sale computer system, and
location information relating to the point-of-sale computer system;
access, at a remote variable authentication protocol server, an initial authentication protocol dataset, wherein the initial authentication protocol dataset comprises at least:
a first authentication protocol associated with the identification associated with the point-of-sale computer system,
a second authentication protocol associated with the location information relating to the point-of-sale computer system, and
a third authentication protocol associated with the information relating to the digital monetary transaction;
generate, at the remote variable authentication protocol server, a variable authentication protocol dataset, wherein generating the variable authentication protocol dataset comprises:
removing from the initial authentication protocol dataset any of the first authentication protocol, the second authentication protocol, or the third authentication protocol that are superseded by another authentication protocol within the initial authentication protocol dataset;
communicate the variable authentication protocol dataset to the point-of-sale computer system;
cause a mobile device to display a list of proofs and/or attestations that conform with the variable authentication protocol dataset;
receive one or more authentication tokens, wherein each of the one or more authentication tokens comprise:
one or more proofs and/or attestations that were selected by a user from the displayed list of proofs and/or attestations that conform with the variable authentication protocol dataset, wherein each of the selected one or more proofs and/or attestations is encrypted to create each respective authentication token using a public key that is unique to a third-party that is requesting the one or more proofs and/or attestations;
validate the received one or more authentication tokens in view of the variable authentication protocol dataset; and
in response to the validation of the received one or more authentication tokens, process the digital monetary transaction.
2. The computer system of claim 1 , wherein the first authentication protocol, the second authentication protocol, and the third authentication protocol comprise sovereign identification requirements for specific proof and attestations.
3. The computer system of claim 1 , wherein the first authentication protocol associated with the identification associated with the point-of-sale computer system comprises authentication requirements that are specific to a company or organization that operates the point-of-sale computer system.
4. The computer system of claim 1 , wherein the second authentication protocol associated with the location information relating to the point-of-sale computer system comprises authentication requirements that are specific to international treaty obligations, national legal obligations, and local law obligations associated with jurisdictions encompassing the point-of-sale computer system.
5. The computer system of claim 1 , wherein the third authentication protocol associated with the information relating to the digital monetary transaction comprises authentication requirements that are specific to the type of monetary transaction that is being processed.
6. The computer system of claim 1 , wherein the executable instructions include instructions that are executable to configure the computer system to:
receive, at the point-of-sale computer system, a digital request to perform the digital monetary transaction; and
communicate, from the point-of-sale computer system to the remote variable authentication protocol server, information relating to the digital monetary transaction, the identification associated with the point-of-sale computer system, and the location information relating to the point-of-sale computer system.
7. The computer system of claim 1 , wherein each of the first authentication protocol, the second authentication protocol, and the third authentication protocol comprise a different list of required proofs and attestations.
8. The computer system of claim 7 , wherein removing from the initial authentication protocol dataset any of the first authentication protocol, the authentication protocol, or the authentication protocol that are superseded by another authentication protocol within the initial authentication protocol dataset comprises:
identifying a requirement for a proof of a particular claim within the first authentication protocol, the second authentication protocol, or the third authentication protocol;
identifying a requirement for an attestation of the particular claim within the first authentication protocol, the second authentication protocol, or the third authentication protocol;
determining that the attestation supersedes the proof; and
removing from the initial authentication protocol dataset the requirement for the proof of the particular claim.
9. The computer system of claim 1 , wherein the one or more authentication tokens comprise claims, proof, and attestations.
10. The computer system of claim 9 , wherein the executable instructions include instructions that are executable to configure the computer system to:
communicate the one or more authentication tokens to a server indicated by the second authentication protocol.
11. A computer-implemented method, executed on one or more processors, for network-based, variable authentication protocols, the computer-implemented method comprising:
receiving, from a point-of-sale computer system, the following information:
information relating to a digital monetary transaction,
an identification associated with a user,
an identification associated with the point-of-sale computer system, and
location information relating to the point-of-sale computer system;
accessing, at a remote variable authentication protocol server, an initial authentication protocol dataset, wherein the initial authentication protocol dataset comprises at least:
a first authentication protocol associated with the identification associated with the point-of-sale computer system,
a second authentication protocol associated with the location information relating to the point-of-sale computer system, and
a third authentication protocol associated with the information relating to the digital monetary transaction;
generating, at the remote variable authentication protocol server, a variable authentication protocol dataset, wherein generating the variable authentication protocol dataset comprises:
removing from the initial authentication protocol dataset any of the first authentication protocol, the second authentication protocol, or the third authentication protocol that are superseded by another authentication protocol within the initial authentication protocol dataset;
communicating the variable authentication protocol dataset to the point-of-sale computer system;
causing a mobile device to display a list of proofs and/or attestations that conform with the variable authentication protocol dataset;
receiving one or more authentication tokens, wherein each of the one or more authentication tokens comprise:
one or more proofs and/or attestations that were selected by a user from the displayed list of proofs and/or attestations that conform with the variable authentication protocol dataset, wherein each of the selected one or more proofs and/or attestations is encrypted to create each respective authentication token using a public key that is unique to a third-party that is requesting the one or more proofs and/or attestations;
validating the received one or more authentication tokens in view of the variable authentication protocol dataset; and
in response to the validation of the received one or more authentication tokens, processing the digital monetary transaction.
12. The computer-implemented method of claim 11 , wherein the first authentication protocol, the second authentication protocol, and the third authentication protocol comprise sovereign identification requirements for specific proof and attestations.
13. The computer-implemented method of claim 11 , wherein the first authentication protocol associated with the identification associated with the point-of-sale computer system comprises authentication requirements that are specific to a company or organization that operates the point-of-sale computer system.
14. The computer-implemented method of claim 11 , wherein the second authentication protocol associated with the location information relating to the point-of-sale computer system comprises authentication requirements that are specific to international treaty obligations, national legal obligations, and local law obligations associated with jurisdictions encompassing the point-of-sale computer system.
15. The computer-implemented method of claim 11 , wherein the third authentication protocol associated with the information relating to the digital monetary transaction comprises authentication requirements that are specific to a type of monetary transaction that is being processed.
16. The computer-implemented method of claim 11 , further comprising:
receiving, at the point-of-sale computer system, a digital request to perform the digital monetary transaction; and
communicating, from the point-of-sale computer system to the remote variable authentication protocol server, information relating to the digital monetary transaction, the identification associated with the point-of-sale computer system, and the location information relating to the point-of-sale computer system.
17. The computer-implemented method of claim 11 , wherein each of the first authentication protocol, the second authentication protocol, and the third authentication protocol comprise a different list of required claims, proof, and attestations.
18. The computer-implemented method of claim 17 , wherein removing from the initial authentication protocol dataset any of the first authentication protocol, the authentication protocol, or the authentication protocol that are superseded by another authentication protocol within the initial authentication protocol dataset comprises:
identifying a requirement for a proof of a particular claim within the first authentication protocol, the second authentication protocol, or the third authentication protocol;
identifying a requirement for an attestation of the particular claim within the first authentication protocol, the second authentication protocol, or the third authentication protocol;
determining that the attestation supersedes the proof; and
removing from the initial authentication protocol dataset the requirement for the proof of the particular claim.
19. The computer-implemented method of claim 11 , wherein the one or more authentication tokens comprise claims, proof, and attestations.
20. A computer program product comprising one or more computer storage media having stored thereon computer-executable instructions that, when executed at a processor, cause a computer system to generate network-based, variable authentication protocols, the computer-executable instructions configured to cause the computer system to:
receive, from a point-of-sale computer system, the following information:
information relating to a digital monetary transaction,
an identification associated with a user,
an identification associated with the point-of-sale computer system, and
location information relating to the point-of-sale computer system;
access, at a remote variable authentication protocol server, an initial authentication protocol dataset, wherein the initial authentication protocol dataset comprises at least:
a first authentication protocol associated with the identification associated with the point-of-sale computer system,
a second authentication protocol associated with the location information relating to the point-of-sale computer system, and
a third authentication protocol associated with the information relating to the digital monetary transaction;
generate, at the remote variable authentication protocol server, a variable authentication protocol dataset, wherein generating the variable authentication protocol dataset comprises:
removing from the initial authentication protocol dataset any of the first authentication protocol, the second authentication protocol, or the third authentication protocol that are superseded by another authentication protocol within the initial authentication protocol dataset;
communicate the variable authentication protocol dataset to the point-of-sale computer system;
cause a mobile device to display a list of proofs and/or attestations that conform with the variable authentication protocol dataset;
receive one or more authentication tokens, wherein each of the one or more authentication tokens comprise:
one or more proofs and/or attestations that were selected by a user from the displayed list of proofs and/or attestations that conform with the variable authentication protocol dataset, wherein each of the selected one or more proofs and/or attestations is encrypted to create each respective authentication token using a public key that is unique to a third-party that is requesting the one or more proofs and/or attestations;
validate the received one or more authentication tokens in view of the variable authentication protocol dataset; and
in response to the validation of the received one or more authentication tokens, process the digital monetary transaction.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.